Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Winfixer Virus Problem! [RESOLVED]

hurthur

Posted 27 August 2005 - 09:33 PM

hurthur

Member

Member

12 posts

I am having a [bleep] of a problem getting rid of this thing. I have run Ad-Aware SE and nothing ever comes up. I have also run Norton Antivirus and it finds NOTHING. I constantly have Ad-Watch on as well to give me real-time protection but that obviously didn't help much. Please HELP!!! Here is my Hijack This log:

Advertisements

Trevuren

Posted 27 August 2005 - 10:25 PM

Trevuren

Old Dog

Retired Staff

18,699 posts

Hi hurther and welcome to the Geeks to Go Forums.

My name is Trevuren and I will be helping you with your log.

1. Go to Geeks to Go . Click on My Controls at the top right hand corner of the window. (make sure you have signed in first) . In the left hand column, click "View Topics" . If you click on the title of your post, you will be taken there

2. Also, while at the My Controls page, check the box to the right of your post and then scroll down. .Where it says "unsubscribe" click the pull-down menu and select "immediate email notification"

**********************************************************************************
HKEY ROOT CLASSIDS:
**********************************************************************************
Files Found are not all bad files:

No matches found.
**********************************************************************************
Directory Listing of system files:
Volume in drive C has no label.
Volume Serial Number is 9854-3AC8

hurthur

Posted 27 August 2005 - 11:41 PM

hurthur

Member

Topic Starter

Member

12 posts

Hi..thanks for the quick reply. I did everything you asked me to and upon reboot, the icons have not disappeared and nothing abnormal is occurring. Upon reboot, Ad-Watch opened as well as a host of other programs. Should I deactivate Ad-Watch and other programs from opening upon startup?

Once they all have a check next to them, click the FIX CHECKED button, then EXIT HiJackThis.

You will once again be prompted to press any key.

(Upon doing so this time, you will receive a "Blue Screen Of Death". Don't worry, this is normal! Let the computer reboot. If it doesn't boot straight to windows, manually turn the computer off and then back on.)

Once the computer is rebooted post a new HiJackThis log as well as the contents of vundofix.txt which can be found in this folder: C:\VundoFix

Trevuren

Posted 28 August 2005 - 10:22 AM

Trevuren

Old Dog

Retired Staff

18,699 posts

Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order in which they are mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes.

First we need to make all files and folders VISIBLE:

Go to start>control panel>folder options>view (tab)

Choose to "show hidden files and folders,"

Uncheck the "hide protected operating system files" and the "hide extensions for know file types" boxes.

Advertisements

hurthur

Posted 28 August 2005 - 01:16 PM

hurthur

Member

Topic Starter

Member

12 posts

Hi Trev & thanks for the last reply. Below is my new HJT log, BUT I was only able to move the C:\ProgramFiles\MyWaySA<= =Folder to the recycyle bin outlined in step 6 above. From there, I was unable to delete the file from the recycle bin as I kept getting a message stating cannot read file or disk. Please let me know what to do about this. In any case, here is the HJT log:

hurthur

Posted 28 August 2005 - 01:30 PM

hurthur

Member

Topic Starter

Member

12 posts

Trev....it appears that the malware problems are over with. I do have a question, however. My Ad-Watch program constantly is notifying me of registry changes & I am continually having to block them. Should I just turn Ad-Watch off?? This is becoming quite annoying. In any case, lets finish the cleanup procedures & rid myself of these problems once and forall. Thanks! P.S....is this recycle bin problem going to pose a threat to my system later on?? Thanks again Trev.

hurthur

Posted 28 August 2005 - 09:09 PM

hurthur

Member

Topic Starter

Member

12 posts

Hi Trev....installed and ran cleanup. Once I rebooted, I opened up my recycle bin and the MyWay file that i moved from my C drive to the bin, the same one that wouldnt delete out of my recycle bin as I continued to get a message "can not read", is no longer there. Did Cleanup get rid of it?? Thanks for your replies!! I really appreciate what you have done for me.